Nursa: Nursa Data Breach Lawsuit Investigation

Nursa Healthcare Staffing Platform Hit by Data Breach, Exposing Sensitive User Information

Nursa, a U.S.-based healthcare staffing marketplace, has come under investigation following a data breach that exposed personally identifiable information (PII) of thousands of users. The company, founded in 2019 and headquartered in Murray, Utah, connects healthcare facilities with nurses and nursing assistants through its mobile and web app for per diem and short-term shifts.

The breach occurred on February 27 and March 18, 2026, when an unauthorized party accessed and exported a subset of user profiles from Nursa’s web application. The company detected the incident on March 20, 2026, and took immediate steps to secure its platform.

Exposed data includes names and full dates of birth, with the breach affecting at least 13,168 residents in Washington state. Class action law firm Shamis & Gentile P.A. is now investigating the incident, and affected individuals may be eligible for compensation as part of a potential lawsuit. The firm is actively reviewing claims from those notified of their exposure in the breach.

Source: https://www.claimdepot.com/investigations/nursa-data-breach-2026

Nursa cybersecurity rating report: https://www.rankiteo.com/company/nursaapp

"id": "NUR1780086351",
"linkid": "nursaapp",
"type": "Breach",
"date": "2/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': '13,168 residents in Washington '
                                              'state',
                        'industry': 'Healthcare',
                        'location': 'Murray, Utah, USA',
                        'name': 'Nursa',
                        'type': 'Healthcare staffing marketplace'}],
 'attack_vector': 'Unauthorized access to web application',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': '13,168',
                 'personally_identifiable_information': 'Names, full dates of '
                                                        'birth',
                 'sensitivity_of_data': 'High (names and full dates of birth)',
                 'type_of_data_compromised': 'Personally identifiable '
                                             'information (PII)'},
 'date_detected': '2026-03-20',
 'description': 'Nursa, a U.S.-based healthcare staffing marketplace, '
                'experienced a data breach that exposed personally '
                'identifiable information (PII) of thousands of users. The '
                'breach occurred when an unauthorized party accessed and '
                'exported a subset of user profiles from Nursa’s web '
                'application.',
 'impact': {'data_compromised': 'Personally identifiable information (PII), '
                                'including names and full dates of birth',
            'identity_theft_risk': 'High',
            'legal_liabilities': 'Potential class action lawsuit',
            'systems_affected': 'Nursa’s web application'},
 'investigation_status': 'Under investigation',
 'references': [{'source': 'Class action law firm Shamis & Gentile P.A.'}],
 'regulatory_compliance': {'legal_actions': 'Class action lawsuit '
                                            'investigation by Shamis & Gentile '
                                            'P.A.'},
 'response': {'containment_measures': 'Immediate steps to secure the platform',
              'incident_response_plan_activated': 'Yes'},
 'title': 'Nursa Healthcare Staffing Platform Data Breach',
 'type': 'Data Breach'}